Safely storing bank account information on parse?

Question

I'm using Parse as a back end. I'd like to send money to users' bank accounts using ACH, but to do that I need access to their bank account information recurrently. So, I'd like to store the information (encrypted) on the Parse server, so that I can credit users' bank accounts accordingly. PCI-compliance, although suggested in this instance, is not required because obviously this has nothing to do with the Payment Card Industry...

That being said, how would one go about safely storing such sensitive data on the parse servers?

Thanks

Personally, i wouldn't store bank account data on any machine that's accessible via the internet. At least, not unless that server was unable to decrypt it. (I might be a bit paranoid. But the last thing i'd want is a news story about how my site got hacked and they made off with a bunch of bank account numbers.) — cHao, Jul 30 '14 at 21:27
Be really careful and make sure ONLY the master key can access this data. — Fosco, Jul 30 '14 at 22:29

troseman · Answer 1 · 2014-08-01T03:34:55.720

0

Check out Spreedly http://www.spreedly.com/

You can have a form that posts to spreedly (or just ajax to send to their API) and they give you a token back. You can then run a charge on the token anytime. Very good service.

There are other tokenizing services like this.

edited Aug 01 '14 at 03:34

answered Jul 31 '14 at 22:24

troseman

1,842
20
19

Safely storing bank account information on parse?

1 Answers1